Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

301,116 advisories

Loading
In handlePackagesChanged of DevicePolicyManagerService.java, there is a possible persistent... Moderate Unreviewed
CVE-2025-48554 was published Sep 4, 2025
In saveGlobalProxyLocked of DevicePolicyManagerService.java, there is a possible way to desync... High Unreviewed
CVE-2025-48552 was published Sep 4, 2025
In apk-versions.txt, there is a possible corruption of telemetry opt-in settings on other watches... Moderate Unreviewed
CVE-2024-49731 was published Sep 4, 2025
In handlePackagesChanged of DevicePolicyManagerService.java, there is a possible DoS of a device... High Unreviewed
CVE-2025-48553 was published Sep 4, 2025
In multiple locations, there is a possible privilege escalation due to a tapjacking/overlay... High Unreviewed
CVE-2025-32349 was published Sep 4, 2025
In setDisplayName of AssociationRequest.java, there is a possible way for an app to retain CDM... High Unreviewed
CVE-2025-48522 was published Sep 4, 2025
In maybeShowDialog of ControlsSettingsDialogManager.kt, there is a possible overlay of the... High Unreviewed
CVE-2025-32350 was published Sep 4, 2025
In getDefaultCBRPackageName of CellBroadcastHandler.java, there is a possible escalation of... High Unreviewed
CVE-2025-48534 was published Sep 4, 2025
In createMultiProfilePagerAdapter of ChooserActivity.java , there is a possible way for an app to... Moderate Unreviewed
CVE-2025-48526 was published Sep 4, 2025
In multiple locations, there is a possible way to overlay biometrics due to a tapjacking/overlay... Moderate Unreviewed
CVE-2025-48528 was published Sep 4, 2025
In isSystem of WifiPermissionsUtil.java, there is a possible permission bypass due to a missing... Moderate Unreviewed
CVE-2025-48524 was published Sep 4, 2025
In multiple locations, there is a possible way to leak hidden work profile notifications due to a... Moderate Unreviewed
CVE-2025-48527 was published Sep 4, 2025
In VerifyNoOverlapInSessions of apexd.cpp, there is a possible way to block security updates... Critical Unreviewed
CVE-2025-48581 was published Sep 4, 2025
In multiple locations, there is a possible way to escape chrome sandbox to attack android... High Unreviewed
CVE-2025-48543 was published Sep 4, 2025
In multiple locations, there is a possible way to access data displayed on the screen due to side... Moderate Unreviewed
CVE-2025-48561 was published Sep 4, 2025
In multiple locations, there is a possible way to record audio via a background app due to a... High Unreviewed
CVE-2025-48549 was published Sep 4, 2025
In writeContent of RemotePrintDocument.java, there is a possible information disclosure due to a... Moderate Unreviewed
CVE-2025-48562 was published Sep 4, 2025
In MMapVAccess of pmr_os.c, there is a possible out of bounds write due to improper input... Moderate Unreviewed
CVE-2024-49739 was published Sep 4, 2025
In collectOps of AppOpsService.java, there is a possible way to cause permanent DoS due to... Moderate Unreviewed
CVE-2025-26429 was published Sep 4, 2025
PHPGurukul Online Shopping Portal 2.1 is vulnerable to Cross Site Scripting (XSS) in /admin... Moderate Unreviewed
CVE-2025-57576 was published Sep 4, 2025
In bta_av_config_ind of bta_av_aact.cc, there is a possible out of bounds read due to type... Moderate Unreviewed
CVE-2023-35657 was published Sep 4, 2025
In validateIpConfiguration of WifiConfigurationUtil.java, there is a possible way to trigger a... Moderate Unreviewed
CVE-2025-26423 was published Sep 4, 2025
In multiple functions of UserController.java, there is a possible lock screen bypass due to a... Moderate Unreviewed
CVE-2025-0077 was published Sep 4, 2025
In multiple locations, there is a possible lock screen bypass due to a logic error in the code.... Moderate Unreviewed
CVE-2025-26421 was published Sep 4, 2025
In onCreate of UninstallerActivity.java, there is a possible way to uninstall a different user's... Moderate Unreviewed
CVE-2025-0087 was published Sep 4, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database